This Privacy Notice and Cookies Policy explains how personal information is collected, used and protected when you use this website.

This website is provided for a GP practice and hosted by Primary Care Online Ltd.

The GP practice is the Data Controller responsible for determining how your personal data is used. Primary Care Online Ltd acts as a Data Processor, providing website hosting, maintenance, and technical support services.

We are committed to protecting your privacy and handling information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and relevant NHS guidance.

About the Website Provider

This website is hosted and maintained by Primary Care Online Ltd (Company No. 12558206).

Email: support@surgeryapp.co.uk
Telephone: 01792 344747
Address: Suite 13, The Cross Community Centre, 1 High Street, Pontardawe, Swansea, SA8 4HU

What This Notice Covers

This notice explains how personal data is processed when you use this website, including information submitted through forms and technical data collected automatically.

This website may contain links to NHS services or third-party systems (such as online consultations or the NHS App). These services have their own privacy policies.

What Is Personal Data?

Personal data is any information that can identify you directly or indirectly, such as your name, contact details, or online identifiers (e.g. IP address).

Information relating to your health is classed as special category data and is subject to additional legal protections.

Information We May Collect

We may collect the following types of information:

  • Information you provide through contact forms (e.g. name, contact details)
  • Technical data such as IP address, browser type, and device information
  • Anonymous usage data through analytics tools

This information is used to operate the website, respond to enquiries, and improve services.

Lawful Basis for Processing

Personal data is processed under the following lawful bases:

  • Article 6(1)(f) – Legitimate interests (website operation, security, and performance)
  • Article 6(1)(e) – Public task (where processing is carried out by the GP practice)
  • Article 6(1)(a) – Consent (where applicable)
  • Article 9(2)(h) – Provision of health or social care (for GP services)

How Your Information Is Used

Your information may be used to:

  • Respond to enquiries submitted through the website
  • Support delivery of GP practice services
  • Improve website functionality and content
  • Monitor usage and maintain security

We do not use personal data for marketing or advertising purposes.

Patient Data and NHS Services

This website may provide access to NHS services such as online consultations, prescription requests, or the NHS App.

Any personal or medical information submitted through these services is processed by the GP practice or NHS systems, not by this website platform.

Please refer to the relevant NHS or GP practice privacy notice for further information.

Sharing of Personal Data

Personal data may be shared:

  • With the GP practice (Data Controller)
  • With authorised IT providers under data processing agreements
  • Where required by law

We do not sell or rent personal data.

Data Storage and Security

We take appropriate measures to protect your data, including:

  • Secure UK-based hosting
  • Encrypted connections (HTTPS)
  • Access controls and monitoring
  • Data breach procedures in line with ICO requirements

Data is retained only as long as necessary and in line with NHS records management guidance.

Your Data Protection Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion (where applicable)
  • Restrict or object to processing
  • Withdraw consent
  • Request data portability

You also have the right to complain to the Information Commissioner’s Office (ICO).

To exercise your rights, please contact your GP practice.

Cookies

Cookies are small files stored on your device to improve website functionality.

Types of cookies used:

  • Essential cookies – required for core functionality
  • Preference cookies – remember user settings
  • Analytical cookies – help improve website performance

Cookies do not collect personally identifiable information for marketing purposes.

About Cookies

Google Analytics Opt-out

Third-Party Services

This website may use third-party services such as Google Analytics, translation tools, or embedded content.

These services may collect anonymised usage data in accordance with their own privacy policies.

Contact

For website-related queries:

Email: support@surgeryapp.co.uk
Telephone: 01792 344747

For data protection queries, please contact your GP practice directly.

Last updated: April 2026

This policy is reviewed regularly to ensure compliance with UK law and NHS guidance.